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1 This action is in response to the communication filed on 2/10/2009. 

2 DETAILED ACTION 

3 Continued Examination Under 3 7 CFR 1. 114 

4 A request for continued examination under 37 CFR 1.114, including the fee set forth in 



5 37 CFR 1 .17(e), was filed in this application after final rejection. Since this application is 

6 eligible for continued examination under 37 CFR 1.114, and the fee set forth in 37 CFR 1 . 1 7(e) 

7 has been timely paid, the finality of the previous Office action has been withdrawn pursuant to 

8 37 CFR 1.1 14. Applicant's submission filed on 2/10/2009 has been entered. 



9 Response to Arguments 

1 0 Applicant's arguments filed 2/1 0/2009 have been fully considered but are moot in view of 

1 1 the new grounds of rejection presented below. 

1 2 All objections and rejections not set forth below have been withdrawn. 

13 Claims 1-39 have been examined. 

1 4 Claim Rejections - 35 USC §101 

15 35 U.S.C. 101 reads as follows: 

1 6 Whoever invents or discovers any new and useful process, machine, manufacture, or composition of matter, or 

1 7 any new and useM improvement thereof, may obtain a patent therefor, subject to the conditions and 

1 8 requirements of this title. 

19 

20 Claim(s) 1-15 and 29-32 is/are rejected under 35 U.S.C. 101 as not falling within one of 

21 the four statutory categories of invention. While the claims recite a series of steps or acts to be 

22 performed, a statutory "process" under 35 U.S.C. 101 must (1) be tied to particular machine, or 

23 (2) transform underlying subject matter (such as an article or material) to a different state or 

24 thing. See page 10 of In Re Bilski 88 USPQ2d 1385. The instant claims are neither positively 

25 tied to a particular machine that accomplishes the claimed method steps nor transform 
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1 underlying subject matter, and therefore do not qualify as a statutory process. The encryption 

2 and decryption method including steps of inputting data, selecting an algorithm, encrypting the 

3 data, etc. is broad enough that the claim could be completely performed mentally, verbally or 

4 without a machine nor is any transformation apparent. As such, the claims are rejected under 35 

5 use 101 as not falling within one of the four statutory categories of invention. 
6 



7 Claim Rejections - 35 USC § 103 

8 The following is a quotation of 35 U.S. C. 103(a) which forms the basis for all 

9 obviousness rejections set forth in this Office action: 

10 A patent may not be obtained though the invention is not identically disclosed or 

1 1 described as set forth in section 102 of this title, if the differences between the subject matter 

12 sought to be patented and the prior art are such that the subject matter as a whole would have 

13 been obvious at the time the invention was made to a person having ordinary skill in the art to 

14 which said subject matter pertains. Patentability shall not be negatived by the manner in which 

15 the invention was made. 
16 

17 

1 8 Claims 7, 9, 1 1 , and 29-36 are rejected under 35 U.S.C. 103(a) as being unpatentable 

1 9 over Marchant (US Patent Number 6,094,486). 
20 

21 Regarding claim 7, Marchant disclosed a data encryption method, the method 

22 comprising: constructing encryption definition data containing a plurality of encryption 

23 algorithm module indicators (See Marchant Col. 5 Lines 42-52); inputting digital data to be 

24 encrj^ted (See Marchant Col. 10 Lines 54-67); fi-om the encryption definition data, selecting at 

25 random an encryption algorithm module indicator (See Marchant Col 10 Lines 54-67); with the 

26 selected encryption algorithm module indicator as a guide, controlling encryption processing of 
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1 the inputted digital data (See Marchant Col. 1 1 Lines 1-3), wherein the selected encryption 

2 algorithm module indicator dynamically maintains a balance between security level and 

3 processing speed (See Marchant Col. 1 1 Lines 1-3); but Marchant did not specifically disclose 

4 appending decryption information to the digital data that has undergone encryption processing 

5 for subsequent output, or wherein at least one of the plurality of encryption algorithm module 

6 indicators indicates an asymmetric encryption algorithm and at least one of the plurality of 

7 encryption algorithm module indicators indicates a symmetric encryption algorithm. 

8 Marchant did, however, disclose sending decryption information with the digital data that 

9 has undergone encryption processing (Marchant Col. 1 1 Lines 30-40). It would have been 

10 obvious to the ordinary person skilled in the art at the time of invention to have "appended" the 

1 1 public code to the encrypted information for transmission. This would have been obvious 

1 2 because the ordinary person skilled in the art would have been motivated to transmit the data and 

13 its corresponding public code together for increased ease of correlation. 

14 Further, Marchant disclosed that the encryption algorithms can be of any kind not 

1 5 requiring transmission of the key with the encrypted information (See Marchant Col. 5 Lines 50- 

16 65). Furthermore, both syrnmetric and asyrnmetric encryption algorithrns were well known in 

17 the art at the time of invention. Therefore, it would have been obvious to the ordinary person 

1 8 skilled in the art at the time of invention to have included both types of algorithms in the set of 

19 selectable algorithms. This would have been obvious because the ordinary person skilled in the 

20 art would have been motivated to increase the amount of algorithms to choose from. 

2 1 Regarding claim 1 1 , Marchant disclosed a data encryption method, the method 

22 comprising the: constructing an encryption module database for storing a plurality of entries of 
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1 records of data, each of the entries of records containing an encryption algorithm module 

2 indicator and an authentication algorithm module indicator (See Marchant Col. 5 Lines 42-52); 

3 constructing encryption definition data which includes a plurality of encryption module database 

4 indexes (See Marchant Col. 5 Lines 42-52); inputting digital data to be encrypted (See Marchant 

5 Col. 10 Lines 54-67); from the encryption definition data, selecting at random an encryption 

6 module database index (See Marchant Col. 10 Lines 54-67); according to the retrieved 

7 encryption module database index, selecting an entry of record from the encryption module 

8 database (See Marchant Col. 10 Lines 54-67); with the selected entry of record as a guide, 

9 controlling encryption processing, including the type of encryption and the type of 

10 authentication, of the inputted digital data (See Marchant Col. 1 1 Lines 1-3), wherein the 

1 1 selected encryption algorithm module indicator dynamically maintains a balance between 

12 security level and processing speed (See Marchant Col. 1 1 Lines 1-3); but Marchant failed to 

13 specifically disclose appending decryption information to the digital data that has undergone 

14 encryption for subsequent output (See Tan Col. 4 Lines 7-23), or wherein the encryption 

1 5 algorithm module indicator of one of the plurality of entries of records of data indicates an 

1 6 asymmetric encryption algorithm and the encryption algorithm module indicator of another of 

17 the plurality of entries of records of data indicates a symmetric encryption algorithm. 

1 8 Marchant did, however, disclose sending decryption information with the digital data that 

19 has undergone encryption processing (Marchant Col. 1 1 Lines 30-40). It would have been 

20 obvious to the ordinary person skilled in the art at the time of invention to have "appended" the 

2 1 public code to the encrypted information for transmission. This would have been obvious 
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1 because the ordinary person skilled in the art would have been motivated to transmit the data and 

2 its corresponding public code together for increased ease of correlation. 

3 Further, Marchant disclosed that the encryption algorithms can be of any kind not 

4 requiring transmission of the key with the encrypted information (See Marchant Col. 5 Lines 50- 

5 65). Furthermore, both symmetric and asymmetric encryption algorithms were well known in 

6 the art at the time of invention. Therefore, it would have been obvious to the ordinary person 

7 skilled in the art at the time of invention to have included both types of algorithms in the set of 

8 selectable algorithms. This would have been obvious because the ordinary person skilled in the 

9 art would have been motivated to increase the amount of algorithms to choose from. 
10 

1 1 Regarding claim 29, Marchant disclosed a data decryption method, the method 

12 comprising: inputting digital data to be decrypted (See Marchant Col. 1 1 Lines 41-44); 

13 retrieving the decryption algorithm module indicator and, upon a negative determination, setting 

14 the data to be decrypted as equivalent to inputted data for subsequent processing (See Tan Col. 

15 13 Lines 4-39 and Col. 8 Lines 3-6); with the retrieved decryption algorithm module indicator as 

16 a guide, confroUing decryption processing of the inputted digital data (See Tan Col. 13 Lines 4- 

17 39) , wherein the retrieved decryption algorithm module indicator dynamically maintains a 

1 8 balance between security level and processing speed (See Tan Col. 1 0 Lines 37-55); and 

19 outputting the digital data that has undergone decryption (See Tan Col. 13 Lines 4-39), but 

20 Marchant failed to specifically disclose inspecting to determine whether the digital data includes 

2 1 a decryption algorithm module indicator and, upon an affirmative determination, performing the 

22 decrj^tion operations, and upon the negative determination outputting the data without 
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1 decrypting it; or that the decryption algorithm was retrieved from a decryption module database 

2 which stores a plurality of decryption algorithm module indicators, with at least one of the 

3 plurality of decryption algorithm module indicators indicating an asymmetric decryption 

4 algorithm and at least one of the plurality of decryption algorithm module indicators indicating a 

5 symmetric decryption algorithm. 

6 Marchant did, however, disclose sending decryption information with the digital data that 

7 has undergone encryption processing (Marchant Col. 1 1 Lines 30-40). It would have been 

8 obvious to the ordinary person skilled in the art at the time of invention to have "appended" the 

9 public code to the encrypted information for transmission. This would have been obvious 

1 0 because the ordinary person skilled in the art would have been motivated to transmit the data and 

1 1 its corresponding public code together for increased ease of correlation. It fiirther would have 

12 been obvious to the ordinary person skilled in the art to not append encryption information to the 

13 data if it is not encrypted, and upon receipt of data without encryption information to not attempt 

14 to decr3q)t the data. This would have been obvious because the ordinary person skilled in the art 

1 5 would have been motivated to avoid unnecessary computation and transmission of unnecessary 

16 data. 

17 Further, Marchant disclosed that the encryption algorithms can be of any kind not 

18 requiring transmission of the key with the encrypted information (See Marchant Col. 5 Lines 50- 

19 65). Furthermore, both symmetric and asymmetric encryption algorithms were well known in 

20 the art at the time of invention. Therefore, it would have been obvious to the ordinary person 

2 1 skilled in the art at the time of invention to have included both types of algorithms in the set of 
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1 selectable algorithms. This would have been obvious because the ordinary person skilled in the 

2 art would have been motivated to increase the amount of algorithms to choose from. 
3 

4 Regarding claim 3 1 , Marchant disclosed a data decryption method, the method 

5 comprising: constructing a decryption module database for storing a plurality of entries of 

6 records of data, each of the plurality of entries of records of data being a decryption algorithm 

7 module indicator (See Marchant Col. 5 Lines 42-52); inputting digital data to be decrypted (See 

8 Marchant Col. 10 Lines 54-67); retrieving the decryption module database index (See Marchant 

9 Col. 1 0 Lines 54-67); with the retrieved decryption module database index as a guide, selecting 

10 an entry of record from the decryption module database (See Marchant Col. 10 Lines 54-67); 

1 1 with the selected entry of record as a guide, confroUing decryption processing of the inputted 

12 digital data (See Marchant Col. 1 1 Lines 1-3), wherein the retrieved decryption algorithm 

13 module indicator dynamically maintains a balance between security level and processing speed 

14 (See Marchant Col. 1 1 Lines 1-3); and outputting the digital data that has undergone decrj^tion 

15 (See Marchant Col. 1 1 Lines 1-3), but Marchant failed to specifically disclose that one of the 

1 6 plurality of entries of records of data being a decryption algorithm module indicator indicates an 

17 asymmetric decryption algorithm and another of the pluraUty of entries of records of data being a 

1 8 decryption algorithm module indicators indicates a symmetric decryption algorithm; or 

19 inspecting to determine whether the digital data includes a decryption module database index 

20 and, upon an affirmative determination, performing the decryption processing, and upon the 

2 1 negative determination outputting the data without decrypting it. 
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1 Marchant did, however, disclose sending decryption information with the digital data that 

2 has undergone encryption processing (Marchant Col. 1 1 Lines 30-40). It would have been 

3 obvious to the ordinary person skilled in the art at the time of invention to have "appended" the 

4 public code to the encrypted information for transmission. This would have been obvious 

5 because the ordinary person skilled in the art would have been motivated to transmit the data and 

6 its corresponding public code together for increased ease of correlation. It further would have 

7 been obvious to the ordinary person skilled in the art to not append encryption information to the 

8 data if it is not encrypted, and upon receipt of data without encryption information to not attempt 

9 to decrypt the data. This would have been obvious because the ordinary person skilled in the art 

1 0 would have been motivated to avoid unnecessary computation and transmission of unnecessary 

1 1 data. 

1 2 Further, Marchant disclosed that the encryption algorithms can be of any kind not 

13 requiring transmission of the key with the encrypted information (See Marchant Col. 5 Lines 50- 

14 65). Furthermore, both symmetric and asymmetric encryption algorithms were well known in 

1 5 the art at the time of invention. Therefore, it would have been obvious to the ordinary person 

1 6 skilled in the art at the time of invention to have included both types of algorithms in the set of 

17 selectable algorithms. This would have been obvious because the ordinary person skilled in the 

18 art would have been motivated to increase the amount of algorithms to choose from. 

19 Regarding claim 33, Marchant disclosed a data decryption apparatus, the apparatus 

20 having an input portion for input of data and an output portion for output of data after decryption 

21 processing thereof (See Marchant Col. 5 Lines 42-52), the apparatus fiirther comprising: 

22 retrieving the decrj^tion algorithm module indicator (See Marchant Col. 10 Lines 54-67); and a 
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1 decryption processing portion for controlling decryption processing of the inputted digital data 

2 using the decryption algorithm module indicator retrieved by the inspecting portion as a guide 

3 (See Marchant Col. 10 Lines 54-67), wherein the retrieved decryption algorithm module 

4 indicator dynamically maintains a balance between security level and processing speed (See 

5 Marchant Col. 10 Lines 54-67), but Marchant failed to specifically disclose an inspecting portion 

6 for inspecting whether the data inputted via the input portion includes a decryption algorithm 

7 module indicator and, upon an affirmative inspection result, the apparatus decrypting the data, 

8 or, upon a negative inspection result, transmitting the inputted data directly to the output portion; 

9 or that the decryption module database which stores a plurality of decryption algorithm module 

10 indicators, with at least one of the plurality of decryption algorithm module indicators indicating 

11 an asymmetric decryption algorithm and at least one of the plurality of decryption algorithm 

12 module indicators indicating a synmietric decryption algorithm. 

13 Marchant did, however, disclose sending decryption information with the digital data that 

14 has undergone encryption processing (Marchant Col. 1 1 Lines 30-40). It would have been 

1 5 obvious to the ordinary person skilled in the art at the time of invention to have "appended" the 

1 6 public code to the encrypted information for transmission. This would have been obvious 

17 because the ordinary person skilled in the art would have been motivated to transmit the data and 

1 8 its corresponding public code together for increased ease of correlation. It further would have 

19 been obvious to the ordinary person skilled in the art to not append encryption information to the 

20 data if it is not encrj^ted, and upon receipt of data without encryption information to not attempt 

2 1 to decrypt the data. This would have been obvious because the ordinary person skilled in the art 
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1 would have been motivated to avoid unnecessary computation and transmission of unnecessary 

2 data. 

3 Further, Marchant disclosed that the encryption algorithms can be of any kind not 

4 requiring transmission of the key with the encrypted information (See Marchant Col. 5 Lines 50- 

5 65). Furthermore, both symmetric and asymmetric encryption algorithms were well known in 

6 the art at the time of invention. Therefore, it would have been obvious to the ordinary person 

7 skilled in the art at the time of invention to have included both types of algorithms in the set of 

8 selectable algorithms. This would have been obvious because the ordinary person skilled in the 

9 art would have been motivated to increase the amount of algorithms to choose from. 
10 

1 1 Regarding claim 9, Marchant disclosed that the constructed encryption definition data 

12 includes a plurality of encryption algorithm module combinations, each of the encryption 

13 algorithm module combinations including an encryption algorithm module indicator and an 

14 authentication algorithm module indicator, an encryption algorithm module combination being 

1 5 selected at random from the retrieved encryption definition data, the selected encryption 

1 6 algorithm module combination being used as a guide for confroUing encryption processing, 

1 7 including the type of encryption and the type of authentication, of the inputted digital data (See 

1 8 Marchant Col. 1 0 Lines 54-67). 

19 Regarding claims 30, 32, and 34, Marchant disclosed that the inspecting portion inspects 

20 whether the data inputted via the input portion includes a decryption algorithm module 

2 1 combination, the decryption algorithm module combination including a decryption algorithm 

22 module indicator and an authentication algorithm module indicator, and, upon an affirmative 



Application/Control Number: 1 0/720,2 1 4 Page 1 2 

Art Unit: 2431 

1 determination, retrieves the decryption algorithm module combination or, upon a negative 

2 determination, transmitting directly the inputted data to the output portion, the decryption 

3 processing portion controlling the decryption processing, including the type of decryption and 

4 the type of authentication, of the inputted digital data using the decryption algorithm module 

5 indicator retrieved by the inspecting portion as a guide (See Marchant Col. 10 Lines 54-67). 

6 Regarding claim 35, Marchant disclosed a decryption module database for storing a 

7 plurality of entries of records of data, each of the entries of records containing a decryption 

8 algorithm module indicator, the inspecting portion inspecting whether the data inputted via the 

9 input portion includes a decryption module database index and, upon an affirmative inspection 

1 0 result, retrieving the decryption module database index and further retrieving an entry of record 

1 1 from the decryption module database using the index and, upon a negative inspection result, 

1 2 directly transmitting the inputted data to the output portion, the decryption processing portion 

13 controlling the decryption processing of the inputted digital data using the entry of record 

14 retrieved by the inspecting portion as a guide (See the rejection of claim 33 above). 

1 5 Regarding claim 36, Marchant disclosed that the decryption module database stores a 

16 plurality of entries of records of data, each of the entries of records containing a decryption 

17 algorithm module indicator and an authentication algorithm module indicator, the decryption 

1 8 processing portion controlling decryption processing, including the type of decryption and the 

19 type of authentication, using the entry of record retrieved by the inspecting portion as a guide 

20 (See Marchant Col. 10 Lines 54-67). 
21 
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1 Claims 1,3,5, 13-16, 18, 20, 22, 23, 25, 27, 28, and 37-38 are rejected under 35 U.S.C. 

2 1 03(a) as being unpatentable over Marchant, and further in view of Tan (US Patent Number 

3 6,490,353). 

4 Regarding claim 1, Tan disclosed a data encryption method, the method comprising: 

5 constructing a security class database for storing a plurality of entries of records of data (See 

6 Marchant Col. 5 Lines 42-52), each of the entries of records including a corresponding 

7 encryption definition field, the encryption definition field including a plurality of encryption 

8 algorithm module indicators, wherein at least one of the plurality of encryption algorithm module 

9 indicators indicates an asymmetric encryption algorithm and at least one of the plurality of 

1 0 encryption algorithm module indicators indicates a symmetric encryption algorithm (See 

1 1 Marchant Col. 5 Lines 42-52, and the rejection of claim 9 above); inputting digital data to be 

12 encrypted (See Marchant Col. 10 Lines 54-67); fi-om the security class database, retrieving the 

13 corresponding encryption definition data (See Marchant Col. 10 Lines 54-67); from the retrieved 

14 encr3q)tion definition data, selecting at random an encryption value related to an algorithm 

15 module indicator (See Marchant Col. 10 Lines 54-67); with the selected encryption algorithm 

1 6 module indicator as a guide, controlling encryption processing of the inputted digital data (See 

17 Marchant Col. 1 1 Lines 1-3), wherein the selected encryption algorithm module indicator 

1 8 dynamically maintains a balance between security level and processing speed (See Marchant 

19 Col. 1 1 Lines 1-3); and appending decryption information to the digital data that has undergone 

20 encryption processing for subsequent output (See the rejection of claim 9 above), but Marchant 

2 1 failed to teach each record also including a data attribute description field; or finding a data 

22 attribute description that matches attribute of the digital data. 
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1 Tan teaches that that in a random encryption algorithm selection system the choice of 

2 complexity of the algorithms might be determined by the user based on the security and 

3 sensitivity level of the data in part, or in whole, purpose of the communication, or other factors 

4 or policies, and that depending on the requirements of the application, users, or policy a library 

5 of the algorithms from the pool are arbitrarily selected (See Tan Col. 8 Lines 15-25). 

6 It would have been obvious to the ordinary person skilled in the art at the time of 

7 invention to employ the teachings of Tan in the encryption system of Marchant by including an 

8 indication of the complexity level of each algorithm in the set and depending on the security and 

9 sensitivity level of the data being transmitted, choosing from the algorithms that meet that 

1 0 sensitivity level. This would have been obvious because the ordinary person skilled in the art 

1 1 would have been motivated to allow the system to easily identify the complexity of each 

1 2 algorithm and determining which algorithms were complex enough for the policy regarding the 

13 data being encrypted. 

14 Regarding claim 5, Marchant disclosed a data encryption method, the method 

1 5 comprising: constructing an encryption module database for storing a plurality of entries of 

16 records of data, each of the plurality of entries of records of data containing an encryption 

17 algorithm module indicator and an authentication algorithm module indicator, wherein the 

1 8 encryption algorithm module indicator of one of the plurality of entries of records of data 

19 indicates an asymmetric encryption algorithm and the encryption algorithm module indicator of 

20 another of the plurality of entries of records of data indicates a symmetric encryption algorithm 

21 (See Marchant Col. 5 Lines 42-52 and the rejection of claim 9 above); inputting digital data to 

22 be encrj^ted (See Marchant Col. 10 Lines 54-67); finding each data attribute description that 
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1 matches an attribute of the digital data, and retrieving the corresponding encryption definition 

2 field (See Marchant Col. 10 Lines 54-67); from the retrieved encryption definition field, 

3 selecting at random an encryption module database indexes (See Marchant Col. 10 Lines 54-67); 

4 according to the retrieved encryption module database index, selecting an entry of record fi-om 

5 the encryption module database (See Marchant Col. 1 0 Lines 54-67); with the selected entry of 

6 record as a guide, controlling encryption processing, including the type of encryption and the 

7 type of authentication, of the inputted digital data (See Marchant Col. 1 1 Lines 1-3), wherein the 

8 selected encryption algorithm module indicator dynamically maintains a balance between 

9 security level and processing speed (See Marchant Col. 1 1 Lines 1-3); and appending decryption 

1 0 information to the digital data that has undergone encryption processing for subsequent output 

1 1 (See the rejection of claim 9 above), but Marchant failed to disclose constructing a security class 

12 database for storing a plurality of entries of records of data, each of the entries of records 

13 containing a data attribute description field and a corresponding encryption definition field, the 

14 encr3q)tion definition field including a plurality of encryption module database indexes. 

1 5 Tan teaches that that in a random encryption algorithm selection system the choice of 

1 6 complexity of the algorithms might be determined by the user based on the security and 

17 sensitivity level of the data in part, or in whole, purpose of the communication, or other factors 

18 or policies, and that depending on the requirements of the application, users, or policy a library 

19 of the algorithms from the pool are arbitrarily selected (See Tan Col. 8 Lines 15-25). 

20 It would have been obvious to the ordinary person skilled in the art at the time of 

2 1 invention to employ the teachings of Tan in the encryption system of Marchant by including an 

22 indication of the complexity level of each algorithm in the set and depending on the security and 
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1 sensitivity level of the data being transmitted, choosing from the algorithms that meet that 

2 sensitivity level. This would have been obvious because the ordinary person skilled in the art 

3 would have been motivated to allow the system to easily identify the complexity of each 

4 algorithm and determining which algorithms were complex enough for the pohcy regarding the 

5 data being encrypted. 

6 Regarding claim 13, Marchant disclosed a data encryption method, the method 

7 comprising : constructing a security class database for storing a plurality of entries of records of 

8 data, each of the plurality of entries of records of data containing a corresponding encryption 

9 definition field, the encryption definition data field being an encryption algorithm module 

10 indicator, wherein the encryption algorithm module indicator of one of the plurality of entries of 

1 1 records of data indicates an asymmetric encryption algorithm and the encryption algorithm 

12 module indicator of another of the plurality of entries of records of data indicates a synmietric 

13 encryption algorithm (See Marchant Col. 5 Lines 42-52 and the rejection of claim 9 above); 

14 inputting digital data to be encrypted (See Marchant Col. 10 Lines 54-67); retrieving the 

1 5 encryption algorithm module indicator of the corresponding encryption definition field (See 

16 Marchant Col. 10 Lines 54-67); with the selected encryption algorithm module indicator as a 

17 guide, controlling encryption processing of the inputted digital data (See Marchant Col. 1 1 Lines 

18 1-3), wherein the selected encryption algorithm module indicator dynamically maintains a 

19 balance between security level and processing speed (See Marchant Col. 10 Lines 54-67); and 

20 appending decrj^tion information to the digital data that has undergone encryption processing 

2 1 for subsequent output (See the rejection of claim 9 above), but Marchant failed to disclose each 
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1 of the entries of records containing a data attribute description field; or from the security class 

2 database, finding each data attribute description that matches an attribute of the digital data. 

3 Tan teaches that that in a random encryption algorithm selection system the choice of 

4 complexity of the algorithms might be determined by the user based on the security and 

5 sensitivity level of the data in part, or in whole, purpose of the communication, or other factors 

6 or policies, and that depending on the requirements of the application, users, or policy a library 

7 of the algorithms from the pool are arbitrarily selected (See Tan Col. 8 Lines 15-25). 

8 It would have been obvious to the ordinary person skilled in the art at the time of 

9 invention to employ the teachings of Tan in the encryption system of Marchant by including an 

10 indication of the complexity level of each algorithm in the set and depending on the security and 

1 1 sensitivity level of the data being transmitted, choosing from the algorithms that meet that 

12 sensitivity level. This would have been obvious because the ordinary person skilled in the art 

13 would have been motivated to allow the system to easily identify the complexity of each 

14 algorithm and determining which algorithms were complex enough for the policy regarding the 

15 data being encrypted. 
16 

17 Regarding claim 15, Marchant disclosed a data encryption method, the method including: 

1 8 constructing an encryption module database for storing a plurality of entries of records of data, 

19 each of the plurality of entries of records of data containing an encryption algorithm module 

20 indicator and an authentication algorithm module indicator, wherein the encryption algorithm 

2 1 module indicator of one of the first plurality of entries of records of data indicates an asymmetric 

22 encrj^tion algorithm and the encryption algorithm module indicator of another of the first 



Application/Control Number: 1 0/720,2 1 4 Page 1 8 

Art Unit: 2431 

1 plurality of entries of records of data indicates a symmetric encryption algorithm (See Marchant 

2 Col. 5 Lines 42-52 and the rejection of claim 9 above); inputting digital data to be encrypted 

3 (See Marchant Col. 10 Lines 54-67); retrieving the encryption module database index from the 

4 corresponding encryption definition field (See Marchant Col. 10 Lines 54-67); with the retrieved 

5 encryption module database index as a guide, selecting an entry of record from the encryption 

6 module database (See Marchant Col. 1 1 Lines 1-3); with the selected entry of record as a guide, 

7 confroUing encryption processing, including the type of encryption and the type of 

8 authentication, of the inputted digital data (See Marchant Col. 1 1 Lines 1-3), wherein the 

9 selected encryption algorithm module indicator dynamically maintains a balance between 

10 security level and processing speed (See Marchant Col. 1 1 Lines 1-3); and appending decryption 

1 1 information to the digital data that has undergone encryption processing for subsequent output 

12 (See the rejection of claim 9 above) however, Marchant failed to disclose constructing a security 

13 class database for storing a plurality of entries of records of data, each of the entries of records 

14 containing a data attribute description field and a corresponding encryption definition field, the 

1 5 encryption definition data field being an encryption module database index; or from the security 

16 class database, finding each data attribute description that matches attribute an of the digital data, 

1 7 and retrieving the encryption module database index from the corresponding encryption 

1 8 definition field. 

1 9 Tan teaches that that in a random encryption algorithm selection system the choice of 

20 complexity of the algorithms might be determined by the user based on the security and 

2 1 sensitivity level of the data in part, or in whole, purpose of the communication, or other factors 
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1 or policies, and that depending on the requirements of the application, users, or policy a library 

2 of the algorithms from the pool are arbitrarily selected (See Tan Col. 8 Lines 15-25). 

3 It would have been obvious to the ordinary person skilled in the art at the time of 

4 invention to employ the teachings of Tan in the encryption system of Marchant by including an 

5 indication of the complexity level of each algorithm in the set and depending on the security and 

6 sensitivity level of the data being transmitted, choosing from the algorithms that meet that 

7 sensitivity level. This would have been obvious because the ordinary person skilled in the art 

8 would have been motivated to allow the system to easily identify the complexity of each 

9 algorithm and determining which algorithms were complex enough for the policy regarding the 

10 data being encrypted. 

1 1 Regarding claim 16, Tan disclosed a data encryption apparatus, the apparatus having an 

1 2 input portion for input of data and an output portion for output of data after encryption 

13 processing thereof, the apparatus further comprising: a security class database for storing a 

14 plurality of entries of records of data, a corresponding encryption definition field, the encr5q)tion 

1 5 definition field including a plurality of encryption algorithm module indicators, wherein at least 

1 6 one of the plurality of encryption algorithm module indicators indicates an asymmetric 

17 encryption algorithm and at least one of the plurality of encryption algorithm module indicators 

18 indicates a symmetric encryption algorithm (See Marchant Col. 5 Lines 42-52 and the rejection 

19 of claim 9 above); an attribute inspecting portion for finding from the security class database 

20 each data attribute description that matches an attribute of the digital data sent from the 

2 1 inspecting portion and for fransmitting the corresponding encryption definition data to a 

22 encrj^tion selecting portion (See Marchant Col. 10 Lines 54-67); the encryption selecting 
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1 portion, selecting at random an encryption algorithm module indicator from the retrieved 

2 encryption definition data (See Marchant Col. 10 Lines 54-67); and an encryption processing 

3 portion for controlling encryption processing of the inputted digital data using the encryption 

4 algorithm module indicator selected by the encryption selecting portion as a guide (See Marchant 

5 Col. 1 1 Lines 1-3), wherein the selected encryption algorithm module indicator dynamically 

6 maintains a balance between security level and processing speed (See Marchant Col. 1 1 Lines 1- 

7 3), but Marchant failed to specifically disclose each of the entries of records containing a data 

8 attribute description field; an inspecting portion for inspecting and separating the data inputted 

9 via the input portion into parameter data or digital data; a parameter processing portion for 

10 updating the security class database with the parameter data sent from the inspecting portion. 

1 1 Tan teaches that that in a random encryption algorithm selection system the choice of 

1 2 complexity of the algorithms might be determined by the user based on the security and 

13 sensitivity level of the data in part, or in whole, purpose of the communication, or other factors 

14 or policies, and that depending on the requirements of the application, users, or policy a library 

15 of the algorithms from the pool are arbitrarily selected (See Tan Col. 8 Lines 15-25). 

16 It would have been obvious to the ordinary person skilled in the art at the time of 

17 invention to employ the teachings of Tan in the encryption system of Marchant by including an 

1 8 indication of the complexity level of each algorithm in the set and depending on the security and 

1 9 sensitivity level of the data being transmitted, choosing from the algorithms that meet that 

20 sensitivity level. This would have been obvious because the ordinary person skilled in the art 

2 1 would have been motivated to allow the system to easily identify the complexity of each 
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1 algorithm and determining which algorithms were complex enough for the policy regarding the 

2 data being encrypted. 

3 Regarding claim 23, Marchant disclosed a data encryption apparatus, the apparatus 

4 having an input portion for input of data and an output portion for output of data after encryption 

5 processing thereof, the apparatus further comprising: a encryption module database for storing a 

6 plurality of entries of records of data, each of the entries of records containing an encryption 

7 algorithm module indicator, wherein the encryption algorithm module indicator of one of the 

8 plurality of entries of records of data indicates an asymmetric encryption algorithm and the 

9 encryption algorithm module indicator of another of the plurality of entries of records of data 

10 indicates a symmetric encryption algorithm (See Marchant Col. 5 Lines 42-52 and the rejection 

11 of claim 9 above); a encryption selecting portion for selecting at random an entry of record from 

12 the encryption module database (See Marchant Col. 10 Lines 54-67); and an encryption 

13 processing portion for controlling encryption processing of the inputted digital data using the 

14 entry of record selected by the encryption selecting portion as a guide (See Marchant Col. 1 1 

1 5 Lines 1-3), wherein the selected encryption algorithm module indicator dynamically maintains a 

16 balance between security level and processing speed (See Marchant Col. 1 1 Lines 1-3), but 

17 Marchant failed to specifically disclosed an inspecting portion for inspecting and separating the 

1 8 data inputted via the input portion into parameter data or digital data; a parameter processing 

1 9 portion for updating the encryption module database using the parameter data from the 

20 inspecting portion. 

2 1 Tan teaches that that in a random encryption algorithm selection system the choice of 

22 complexity of the algorithms might be determined by the user based on the security and 
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1 sensitivity level of the data in part, or in whole, purpose of the communication, or other factors 

2 or policies, and that depending on the requirements of the application, users, or policy a library 

3 of the algorithms from the pool are arbitrarily selected (See Tan Col. 8 Lines 15-25). 

4 It would have been obvious to the ordinary person skilled in the art at the time of 

5 invention to employ the teachings of Tan in the encryption system of Marchant by including an 

6 indication of the complexity level of each algorithm in the set and depending on the security and 

7 sensitivity level of the data being transmitted, choosing from the algorithms that meet that 

8 sensitivity level. This would have been obvious because the ordinary person skilled in the art 

9 would have been motivated to allow the system to easily identify the complexity of each 

1 0 algorithm and determining which algorithms were complex enough for the policy regarding the 

1 1 data being encrypted. 

12 Regarding claim 27, Marchant disclosed a data encryption apparatus, the apparatus 

13 having an input portion for input of data and an output portion for output of data after encryption 

14 processing thereof, the apparatus further comprising: a security class database for storing a 

1 5 plurality of entries of records of data, each of the entries of records containing a corresponding 

1 6 encr5^tion definition field, the encryption definition field being an encryption algorithm module 

17 indicator, wherein the encryption algorithm module indicator of one of the plurality of entries of 

18 records of data indicates an asymmetric encryption algorithm and the encl3rption algorithm 

19 module indicator of another of the plurality of entries of records of data indicates a sjmimetric 

20 encrj^tion algorithm (See Marchant Col. 5 Lines 42-52); and the encryption processing portion 

2 1 for controlling encryption processing of the inputted digital data using the encryption algorithm 

22 module indicator selected as a guide (See Marchant Col. 1 1 Lines 1-3), wherein the selected 
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1 encryption algorithm module indicator dynamically maintains a balance between security level 

2 and processing speed (See Marchant Col. 1 1 Lines 1-3), but Marchant failed to specifically 

3 disclose a security class database for storing a plurality of entries of records of data, each of the 

4 entries of records containing a data attribute description field and an inspecting portion for 

5 inspecting and separating the data inputted via the input portion into parameter data or digital 

6 data; a parameter processing portion for updating the security class database with the parameter 

7 data from the inspecting portion; an attribute inspecting portion for finding from the security 

8 class database each data attribute description that matches an attribute of the digital data sent 

9 from the inspecting portion and for transmitting the corresponding encryption definition data to 

1 0 an encryption processing portion. 

1 1 Tan teaches that that in a random encryption algorithm selection system the choice of 

1 2 complexity of the algorithms might be determined by the user based on the security and 

13 sensitivity level of the data in part, or in whole, purpose of the communication, or other factors 

14 or policies, and that depending on the requirements of the application, users, or policy a library 

15 of the algorithms from the pool are arbitrarily selected (See Tan Col. 8 Lines 15-25). 

16 It would have been obvious to the ordinary person skilled in the art at the time of 

17 invention to employ the teachings of Tan in the encryption system of Marchant by including an 

1 8 indication of the complexity level of each algorithm in the set and depending on the security and 

1 9 sensitivity level of the data being transmitted, choosing from the algorithms that meet that 

20 sensitivity level. This would have been obvious because the ordinary person skilled in the art 

2 1 would have been motivated to allow the system to easily identify the complexity of each 
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1 algorithm and determining which algorithms were complex enough for the policy regarding the 

2 data being encrypted. 

3 Regarding claims 3, 14, 18, 25, and 28, Marchant and Tan disclosed that the encryption 

4 definition field in the security class database constructed in step A is an encryption algorithm 

5 module combination, the encryption algorithm module combination including an encryption 

6 algorithm module indicator and an authentication algorithm module indicator, data of an 

7 encryption algorithm module combination of the corresponding encryption definition field being 

8 retrieved in the step C of finding from the security class database the data attribute description 

9 that matches the attribute of the digital data, the selected encryption algorithm module 

10 combination being used in step D as a guide for controlling encryption processing, including the 

1 1 type of encryption and the type of authentication, of the inputted digital data (See Marchant Col. 

12 5 Lines 42-52 and the rejection of claim 9 above). 

13 Regarding claim 20, Marchant and Tan disclosed an encryption module database for 

14 storing a plurality of entries of records of data, each of the entries of records containing an 

1 5 encryption algorithm module indicator and an authentication algorithm module indicator (See 

16 Marchant Col. 5 Lines 42-52); the encryption definition field of the security class database 

17 including a plurality of encryption module database indexes (See Marchant Col. 5 Lines 42-52); 

1 8 the encryption selecting portion selecting at random an encryption module database index from 

19 the retrieved encryption definition data and, according to the retrieved encryption module 

20 database index, and selecting an entry of record from the encryption module database (See 

2 1 Marchant Col. 1 0 Lines 54-67); the encryption processing portion using the entry of record 

22 selected by the encryption selecting portion as a guide to control encryption processing. 



Application/Control Number: 1 0/720,2 1 4 Page 25 

Art Unit: 2431 

1 including the type of encryption and the type of authentication, of the inputted digital data (See 

2 Marchant Col. 1 1 Lines 1-3), wherein the selected entry of record dynamically maintains a 

3 balance between security level and processing speed (See Marchant Col. 1 1 Lines 1-3). 

4 Regarding claim 22, Marchant and Tan disclosed that the parameter processing portion 

5 updates the security class database and the encryption module database using the parameter data 

6 sent from the inspecting portion (See Tan Col. 8 Lines 15-25 and the rejection of claim 9 above). 

7 Regarding claim 37, Marchant and Tan disclosed the claimed decryption system 

8 including inspecting whether the digital data includes a decryption module database index and, 

9 upon an affirmative inspection result, retrieving the decryption module database index and 

10 further retrieving an entry of record from the decryption module database using the index and, 

1 1 upon a negative inspection result, directly transmitting the inputted data to the output portion 

12 (See Tan Col. 8 Lines 3-25 and Col. 13 Lines 4-39) but failed to specifically disclose a parameter 

13 processing portion for updating the decryption module database using parameter data, the 

14 inspecting portion inspecting and separating the data inputted via the input portion into 

1 5 parameter data or digital data and, if the inputted data is parameter data, transmitting the same to 

16 the parameter processing portion and, if the inputted data is digital data. However, Marchant and 

17 Tan did disclose that the choice of complexity of the securithms might be determined by the user 

1 8 based on the security and sensitivity level of the data in part, or in whole, purpose of the 

19 communication, or other factors or policies, and that depending on the requirements of the 

20 application, users, or policy a library of the algorithms from the pool are arbitrarily selected (See 

21 Tan Col. 8 Lines 15-25). 
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1 It would have been obvious to the ordinary person skilled in the art at the time of 

2 invention to have included an indication of the complexity level of each algorithm in the pool, 

3 and selecting the algorithm based upon an appropriate complexity level required for the input 

4 data. This would have been obvious because the ordinary person skilled in the art would have 

5 been motivated to allow the system to easily identify the complexity of each algorithm when 

6 determining which algorithms were complex enough for the pohcy regarding the data being 

7 encrypted. 

8 Regarding claim 38, Marchant and Tan disclosed the decryption module database stores a 

9 plurality of entries of records of data, each of the entries of records containing a decryption 

10 algorithm module indicator and an authentication algorithm module indicator, the decryption 

1 1 processing portion controlling decryption processing, including the type of decryption and the 

12 type of authentication, of the inputted digital data using the entry of record retrieved by the 

13 inspecting portion as a guide (See Marchant Col. 1 1 Line 41 - Col. 12 Line 61). 

14 Claims 2, 4, 6, 8, 10, 12, 17, 19, 21, 24, 26, and 39 are rejected under 35 U.S.C. 103(a) as 

15 being unpatentable over Marchant and Tan as applied to claims 1,5,7, 11, 16, 23, and 27 above, 

16 and fiirther in view of Kim et al. (US Patent Number 6,499,127) hereinafter referred to as Kim. 

17 Marchant and Tan disclosed randomly selecting one algorithm from a set of algorithms 

1 8 randomly and that the encryption definition field in the security class database includes a 

19 plurality of encryption algorithm module indicators and corresponding proportions adopted 

20 thereby (See Tan Col. 8 Lines 15-25 and Col. 9 Lines 34-40 and the rejection of claim 9 above), 

2 1 but failed to specifically disclose an encryption algorithm module indicator being selected from 

22 the retrieved encryption definition data according to each of the encryption algorithm module 
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1 indicators and the corresponding proportions adopted thereby in cooperation with a random 

2 number generator and a MOD operation. 

3 Ahematively, Kim teaches a method for selecting a number in a range randomly 

4 comprising determining the size of the range, generating a random number, and taking the 

5 random number modulo the size of the range (See Kim Col. 23 Paragraph 1). 

6 It would have been obvious to the ordinary person skilled in the art at the time of 



7 invention to employ the teachings of Kim in the random algorithm system of Marchant and Tan 

8 by selecting the algorithm randomly from the seed by generating a random number and then 

9 taking the random number MOD the number of entries in the seed. This would have been 

1 0 obvious because the ordinary person skilled in the art would have been motivated to select the 

1 1 algorithm randomly as taught by Marchant. 



1 2 Regarding claim 39, Marchant and Tan disclosed that the parameter processing portion 

13 updates the security class database and the encryption module database using the parameter data 

14 sent from the inspecting portion (See Tan Col. 8 Lines 15-25). 

15 Conclusion 

1 6 Claims 1-39 have been rej ected. 

17 Any inquiry concerning this communication or earlier communications from the 

1 8 examiner should be directed to MATTHEW T. HENNING whose telephone number is 

19 (571)272-3790. The examiner can normally be reached on M-F 8-4. 

20 If attempts to reach the examiner by telephone are unsuccessfiil, the examiner's 

21 supervisor, BCim Vu can be reached on (571) 272-3859. The fax phone number for the 

22 organization where this application or proceeding is assigned is 571-273-8300. 
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